last sync: 2024-Nov-25 18:54:24 UTC

Microsoft Managed Control 1601 - Developer Security Testing And Evaluation | Regulatory Compliance - System and Services Acquisition

Azure BuiltIn Policy definition

Source Azure Portal
Display name Microsoft Managed Control 1601 - Developer Security Testing And Evaluation
Id 0ee79a0c-addf-4ce9-9b3c-d9576ed5e20e
Version 1.0.0
Details on versioning
Versioning Versions supported for Versioning: 0
Built-in Versioning [Preview]
Category Regulatory Compliance
Microsoft Learn
Description Microsoft implements this System and Services Acquisition control
Additional metadata Name/Id: ACF1601 / Microsoft Managed Control 1601
Category: System and Services Acquisition
Title: Developer Security Testing And Evaluation - Perform Testing/Evaluation
Ownership: Customer, Microsoft
Description: The organization requires the developer of the information system, system component, or information system service to: Perform tests required by the SDL process testing/evaluation at depth and coverage required by the SDL process;
Requirements: Azure develops security assessment plans in accordance with Microsoft's Security Development Lifecycle (SDL) process.
Mode Indexed
Type Static
Preview False
Deprecated False
Effect Fixed
audit
RBAC role(s) none
Rule aliases none
Rule resource types IF (2)
Microsoft.Resources/subscriptions
Microsoft.Resources/subscriptions/resourceGroups
Compliance Not a Compliance control
Initiatives usage none
History none
JSON compare n/a
JSON
api-version=2021-06-01
EPAC